In short, I had a working connection on OZO
SSID for multiple weeks following the introduction of the captive portal. Since Sunday, March 31, I've had problems at the DNS layer and above. Logging into the WiFi does not lead to a captive portal, but instead drops the request. Trying to trigger the captive portal from the browser or curl with an http site does not work. Attempting to ping Google's DNS server at 8.8.8.8 or Cloudflare's at 1.1.1.1 also does not go through. I believe Unifi management server's captive portal is based on pfsense
which functions by capturing and modifying the DNS response with a 302
. Attempting to login on my phone managed to reveal the server's IP address and the below is my attempt to explore what flow the server was attempting to serve to clients. It revealed TLS/SSL certificate issues (perhaps the gateway has been configured to attempt to MitM TLS encrypted packets), but also revealed the login page for the management server on the guest network at port 8443.
Final